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DETAILED ACTION 
Response to Amendment 

This Office action has been issued in response to amendment filed 1 1 December 2007. 
Claims 1 and 3-6 are pending. Applicant's arguments have been carefully and respectfully 
considered in light of the instant amendment and are persuasive, except as they relate to the 
claim rejections under 35 USC 102 and 103, as will be discussed below. Accordingly, this 
action has been made FINAL. 

Claim Objections 

As per claim 1, there should be a semicolon after the "a decryption circuit" limitation and 
after the "encrypted data, to be decrypted" limitation. 

' As per claim 3, the instant claim depends on itself. The Examiner assumes that this is a 
typo and that the claim should depend on claim 1 . 

Claim Rejections - 35 USC §102 
The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that form the 
basis for the rejections under this section made in this Office action: 

A person shall be entitled to a patent unless - 

(b) the invention was patented or described in a printed publication in this or a foreign country or in public use or 
on sale in this country, more than one year prior to the date of application for patent in the United States. 

Claims 1 and 3-5 are rejected under 35 U.S.C. 102(b) as being anticipated by Yano et al., 

U.S. Pat. 6,71 1,594. 

As per claims 1 and 3-5, Yano et al. teach: 
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1 . (Currently Amended) A data service apparatus comprising: 

storage means for storing digital data (See e.g. col. 2, lines 4-45, "a reading/writing 
means for reading/writing digital data from/onto a portable recording medium"); 

an encryption circuit for encrypting digital data into encrypted data (See e.g. col. 2, lines 
46-64, "a means for encrypting data"); 

a decryption circuit for decrypting encrypted data into its initial digital data (See e.g. col. 
2, lines 46-64, "individual divided data are decrypted or, alternatively, to perform the decryption 
after the divided data are integrated"), and 

an identification code generation circuit for generating an identification code unique to 
the data service apparatus (See e.g. col. 1, line 45 to col. 2, line 3, "a data management means for 
recording. . . data-saving procedure information that indicates a dividing method of the data to be 
saved and the like" which includes, see col. 6, lines 14-41, "A unique file name is designed to be 
given to each of the divided files formed on the basis of the to-be-saved data file in accordance 
with a predetermined rule"), wherein 

digital data, to be backed up, stored in the storage means is extracted, encrypted by the 
encryption circuit into encrypted data and stored in an external storage unit (See e.g. Fig. 3, SI 
"medium reading and authentication", S23 "division/encryption", and S31 "divided file writing" 
where, see col. 2, lines 4-45, "the divided parts are each transferred to the plurality of servers on 
the network and are distributed/saved therein"); 

encrypted data, to be decrypted, stored in the external storage unit is extracted, decrypted 
by the decryption circuit into the initial digital data and written back to the storage means (See 
e.g. Fig. 3, S43 "reading of divided files that constitute the to-be-extracted file", S47 
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"decryption/integration of divided files", and S51 "saving of the to-be-extracted file" where, see 
col. 2, lines 4-45, "it becomes possible to access the saved data from an arbitrary distributed data 
archive device connected to the network as long as the portable recording medium is carried with 
the user"), 

the encryption circuit is operable to perform encryption by utilizing the identification 
code generated by the identification code generation circuit (See e.g. col. 2, lines 46-64, 
"cryptographic key information and the like that are needed for encryption/decryption are 
recorded as the data-saving procedure information by the data management means" where, see 
col. 5, line 58 to col. 6, line 13, "For example, if the data file Fl is divided into four divided files 
Fl 1 to F14, these files Fl 1 to F 14 are distributed and saved onto any one of the three data servers 
2a to 2c of FIG. 1. In this case, information about how the original data file Fl has been divided, 
about what bytes the size of each divided file is, and about how many divided files have been 
formed in total is stored onto the management folder of FIG. 2 as management data (data-saving 
procedure information) of the file Fl. If the encryption method, the redundancy storage method, 
the dummy data addition method, etc., are employed at this time, information about these 
methods is also stored as management data"); and 

the decryption circuit is operable to perform decryption by utilizing the identification 
code generated by the identification code generation circuit (See e.g. col. 2, lines 46-64, 
"cryptographic key information and the like that are needed for encryption/decryption are 
recorded as the data-saving procedure information by the data management means" where, see 
col. 6, lines 42-61, "Moreover, reference to data-saving procedure information in the 
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management data of the file Fl makes it possible to recognize a reconstituting procedure about 
how the divided files that have been read should be decrypted"). 

2. (Canceled) 

3. (Currently Amended) The data service apparatus according to claim 3, further 
comprising a falsification detection circuit for checking, when decrypting the digital data from 
the encrypted data, the digital data according to the identification code generated by the 
identification code generation circuit, and for inhibiting the initial digital data from being written 
back to the storage means when it is found that the digital data has been falsified (See e.g. col. 
13, lines 8-31, "Since an IC card with very great security against illegal data falsification can be 
used as the archive card 10 needed when data is saved and when the data is extracted, there is no 
fear that saved data will be stolen", col. 8, line 57 to col. 9, line 10, "The authenticity of the 
distributed data archive device 1 .. . is checked on the side of the archive card 10 while the 
authenticity of the archive card 10 is being checked by the verification means 12", and Fig. 3, SI 
"medium reading and authentication" where, if the data is falsified, it is not read). 

4. (Currently Amended) The data service apparatus according to any one of claims land 
3, further comprising a comparison circuit for making a comparison in attribute data between the 
digital data in the storage means and the digital data stored in the external storage unit (See e.g. 
col. 5, line 58 to col. 6, line 13, "Information (i.e., URL list of the data servers) that shows the 
data server on which each of the four divided files Fl 1 to F14 is saved is stored onto the 
management folder of FIG. 2 as management data (data depository information) of the file Fl" 
where an attribute of the data is the server's URL), 
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wherein digital data, which has been updated after being previously backed up in the 
external storage unit and which is stored in the storage means, is stored into the external storage 
unit depending upon a comparison result from the comparison circuit (See e.g. col. 4, lines 24- 
52, "the data depository information is constructed by a list of addresses (i.e., Uniform Resource 
Locator, which is hereinafter referred to as URL) of a plurality of data servers that are depository 
destinations" where, see col. 13, lines 8-31, the data can be updated because "It is possible to 
very conveniently access the saved data from an arbitrary distributed data archive device 
connected to the network if the archive card 10 is carried"). 

5. (Original) The data service apparatus according to claim 4, further comprising: 

a detection circuit for detecting an optimum file of digital data for storage as a file into 
the external storage unit (See e.g. col. 8, lines 19-32, "one divided file is constructed with data in 
which one byte is taken at every third byte if three divided files are formed" where taking every 
third byte is "optimal" because, see col. 8, lines 19-32, "it is preferable to prevent the contents of 
the original file from being perceived in the case where only one divided file has been read"); 

an aggregation circuit for aggregating a plurality of files into one file (See e.g. col. 1, line 
45 to col. 2, line 3, "an integration/reconstitution means for reconstituting divided/saved data into 
an original single data file"); 

a division circuit for dividing a file into a plurality of files each having a predetermined 
size (See e.g. col. 1, line 45 to col. 2, line 3, "a division means for dividing data to be saved into 
a plurality of parts"); 
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a synthesis circuit for combining the divided files together into one file (See e.g. col. 1, 
line 45 to col. 2, line 3, "an integration/reconstitution means for reconstituting divided/saved data 
into an original single data file"); and 

a separation circuit for separating one file formed from a plurality files into the plurality 
of files (See e.g. col. 1, line 45 to col. 2, line 3, "a division means for dividing data to be saved 
into a plurality of parts"), wherein 

for backup of the digital data: 

digital data read by the aggregation circuit from the storage means are aggregated into 
one file (See e.g. col. 2, lines 4-45, "when the data to be saved is extracted, the data to be saved 
that has been distributed into the plurality of servers on the network and has been saved therein is 
extracted"); 

the file as a result of the aggregation is divided by the division circuit according to the 
size detected by the detection circuit (See e.g. col. 8, lines 19-32, "one divided file is constructed 
with data in which one byte is taken at every third byte if three divided files are formed"); and 

the file as a result of the division being stored into the external storage unit (See e.g. col. 
2, lines 4-45, "a network communication means for transferring the data files divided by a 
communication protocol determined among data servers keeping the data to be saved"); and 
wherein 

for decryption of the digital data: 

the encrypted data stored in the external storage unit are decrypted and combined by the 
synthesis circuit into an initial one file (See e.g. col. 2, lines 46-64, "the 
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integration/reconstitution means reconstitutes the divided data into the original data in such a 
way as to perform the integration after the saved individual divided data are decrypted"); and 

the file as a result of the synthetic combination is separated by the separation circuit into 
the plurality of initial digital data and written back to the storage means (See e.g. Fig. 3, S51 
"saving of the to-be-extracted file" where the file is saved to the card, Fig. 1 where there can be 
more than one "to-be-saved data file", and therefore after the files have been individually 
recombined from the data servers they are still separate from each other on the card and therefore 
a "plurality of initial digital data and written back to the storage means"). 

Claim Rejections - 35 USC § 103 

The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in 
section 102 of this title, if the differences between the subject matter sought to be patented and the prior art are 
such that the subject matter as a whole would have been obvious at the time the invention was made to a person 
having ordinary skill in the art to which said subject matter pertains. Patentability shall not be negatived by the 
manner in which the invention was made. 

Claim 6 is rejected under 35 U.S.C. 103(a) as being unpatentable over Yano et al. as 
applied to claims 1 and 3-5 above, and further in view of Murty et al., U.S. P.G. Pub. 
2003/0084290. 

Yano et al. disclose the subject matter upon which the instant claim depends, but do not 
appear to disclose using a certificate server to authenticate the access rights of the portable 
storage medium. However Murty et al. do make such a disclosure (See below). Yano et al. and 
Murty et al. are analogous art because they both discuss protecting digital files transferred over a 
network. At the time of the invention, it would have been obvious to one of ordinary skill in the 
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networking art to combine the teachings of the cited references because Yano's et al. teachings 
would have allowed Murty's et al. apparatus to use a certificate server for authentication so as to 
"provide an improved post-side encryption module for encrypting data for storage on a storage 
area network, and for decrypting encrypted data received from the storage area network", see 
Murty et al. [0009], because "a security system for storage area networks that provides 
certificate-based authentication, persistent encryption of data (during movement and storage) and 
transparent operation (across all hardware and software components found on the storage area 
network) is desirable", see Murty et al. [0008]. 

6. (Currently Amended) The apparatus according to claim 5, further comprising a 
communications circuit for performing information communications with an external certificate 
server, 

wherein restoration of the digital data to be decrypted is done only when the 
communications circuit has received a permission of restoration from the external certificate 
circuit (See e.g. Murty et al. [0029], "To obtain the symmetric storage key, the HSED 22 must 
authenticate itself with the security appliance 20. This authentication may be achieved in any one 
of a number of different ways, but preferably involves the HSED 22 sending a certificate signing 
request to the security appliance 20" where Murty et al. [0028], "the HSED 22 intercepts the 
incoming data and decrypts (using the symmetric storage key 26) what is read from the drive 
before delivering this information to the host server 12a"). 
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Response to Arguments 

Applicant's arguments with respect to objections and rejections not repeated herein are 
moot, as the respective objections and rejections have been withdrawn in light of the instant 
amendments. 

As per Applicant's argument that Yano et al. do not disclose the "cryptographic key" as 
an "identification code unique to the data service", the Examiner agrees. However, it is not the 
Examiner's position that the "cryptographic key" is the unique identifier. Rather, the reference 
indicates the relationship between the "unique file name... given to each of the divided files 
formed on the basis of the to-be-saved data file", see col. 6, lines 14-41, contained in the "data 
management means for recording... data-saving procedure information that indicates a dividing 
method of the data to be saved and the like", see col. 1, line 45 to col. 2, line 3, and the 
encryption/decryption process. The relationship is that the management data contains the file 
name and the necessary data to perform the encryption/decryption in the data-saving procedure. 
The Examiner has further explained the rejection above. 

As per Applicant's argument that the Examiner do not appear to have relied on Murty et 
al. to overcome the above-described deficiencies of Yano et al., the Examiner respectfully 
disagrees. The Examiner has further explained the motivation for making the combination in the 
rejection above. 
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Conclusion 


Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Aaron J. Sanders whose telephone number is 571-270-1016. The 
examiner can normally be reached on M-Th 8:00a-5:00p. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Vo Tim can be reached on 571-272-3642. The fax phone number for the 
organization where this application or proceeding is assigned is 571-273-8300. 

Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). If you would 
like assistance from a USPTO Customer Service Representative or access to the automated 
information system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 
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